Daily NCSC-FI news followup 2019-10-06

HildaCrypt Ransomware Developer Releases Decryption Keys

www.bleepingcomputer.com/news/security/hildacrypt-ransomware-developer-releases-decryption-keys/ The developer behind the HildaCrypt Ransomware has decided to release the ransomware’s private decryption keys. With these keys a decryptor can be made that would allow any potential victims to recover their files for free.. BleepingComputer had a conversation with the ransomware developer last night and was told that HildaCrypt was only made for fun and “it was mainly an educational thing really”. They further told us “hildacrypt never was used on anyone” and that they released the keys in case “some kid gets a hold of these binaries I hope the keys would be of some use”.

DNS-over-HTTPS causes more problems than it solves, experts say

www.zdnet.com/article/dns-over-https-causes-more-problems-than-it-solves-experts-say/#ftag=RSSbaffb68 Several experts, companies, and national entities have voiced very convincing concerns about DoH and its features.. The TL;DR is that most experts think DoH is not good, and people should be focusing their efforts on implementing better ways to encrypt DNS traffic — such as DNS-over-TLS — rather than DoH.

Värvätäänkö Facebookissa vakoojia? Erikoinen somekampanja herättää kysymyksiä joihin ei saada vastauksia

www.tivi.fi/uutiset/tv/d2eb827c-43cb-4b11-9c56-3229ff302cd5 Yhdysvaltain liittovaltion keskusrikospoliisi FBI mainostaa Facebookissa Washingtonin venäläisille. FBI yrittää ilmeisesti tuoreella mainoskampanjallaan värvätä venäläisiä agenteiksi tai heistä tietäviä kertomaan tietojaan, kertoo uutiskanava CNN.

You might be interested in …

Daily NCSC-FI news followup 2021-07-29

APT trends report Q2 2021 securelist.com/apt-trends-report-q2-2021/103517/ We have reported several supply-chain attacks in recent months.. While some were major and have attracted worldwide attention, we observed equally successful low-tech attacks, such as BountyGlad, CoughingDown and the attack targeting Codecov. Cyber-attack on Iranian railway was a wiper incident, not ransomware therecord.media/cyber-attack-on-iranian-railway-was-a-wiper-incident-not-ransomware/ The cyber-attack that paralyzed Irans […]

Read More

Daily NCSC-FI news followup 2021-04-25

VPN Hacks Are a Slow-Motion Disaster www.wired.com/story/vpn-hacks-pulse-secure-espionage/ Recent spying attacks against Pulse Secure VPN are just the latest example of a long-simmering cybersecurity meltdown. Hacking campaign targets FileZen file-sharing network appliances therecord.media/hacking-campaign-targets-filezen-file-sharing-network-appliances/ Threat actors are using two vulnerabilities in a popular file-sharing server to breach corporate and government systems and steal sensitive data as part […]

Read More

Daily NCSC-FI news followup 2020-09-18

RampantKitten: An Iranian Surveillance Operation unraveled blog.checkpoint.com/2020/09/18/rampantkitten-an-iranian-surveillance-operation-unraveled/ Check Point Research has unraveled an ongoing surveillance operation by Iranian entities that has been targeting Iranian expats and dissidents for years. While some individual sightings of this attack were previously reported by other researchers and journalists, our investigation allowed us to connect the several different campaigns and […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.